Simple security question
Brett I. Holcomb
brettholcomb
Mon May 17 11:45:43 PDT 2004
Anyone can acccess your system through port 6000 unless you set up some
security.
Collins Richey wrote:
> On Sun, 16 Mar 2003 22:33:08 -0500
> Joel Hammer <Joel at hammershome.com> wrote:
>
>> Yes.
>>
>> Port 6000 allows anyone to attach to your X-server.
>
> And the effect of this would be? I'm not trying to be a wise ass, I just
> don't understand all of this.
>
>> xdmcp also allows people to get a login screen to your box.
>> Anybody could dump stuff to your printer, too.
>>
>> I do not know what is listening to 32768. I do not know what wdm is.
>
> wdm is the login manager (an extended xdm)
>>
>> If you want, I could run nmap against your server for your. This stuff
>
> cool.
>
>> is all easy to hide from the world, BTW.
>>
>> Joel
>>
>> Sun, Mar 16, 2003 at 06:45:09PM -0700, Collins Richey wrote:
>> > Simple security question. I don't do anything special for security,
>> > but I got curious enough to issue `lsof -i` just for grins.
>> >
>> >
>> > COMMAND PID USER FD TYPE DEVICE SIZE NODE NAME
>> > lpd 997 lp 6u IPv4 2805 TCP *:printer (LISTEN)
>> > wdm 1146 root 4u IPv4 3243 UDP *:xdmcp
>> > wdm 1146 root 5u IPv4 3244 TCP *:32768 (LISTEN)
>> > X 1149 root 1u IPv4 3249 TCP *:6000 (LISTEN)
>> > wdm 1150 root 5u IPv4 3244 TCP *:32768 (LISTEN)
>> >
>> > Given the few ports that are actually listening, do I have much to
>> > worry about?
>> >
>
> --
> Collins
--
Brett I. Holcomb
brettholcomb at R777charter.net
AKA Grunt <><
Registered Linux User #188143
Remove R777 to email
More information about the Linux-users
mailing list